On 2014-07-10 13:53, Henri Sivonen wrote:
On Tue, Jul 1, 2014 at 11:58 PM, Brian Smith <br...@briansmith.org> wrote:
I am interested in discussing what we can do to help more server side
products get better cipher suites by default, and on deciding whether we
add support for ChaCha20-Poly1304
Out of curiosity, what's holding back a decision to implement
ChaCha20-Poly1305?
I think implementation already exist, but there currently is no standard
yet on how to do it. There are various drafts:
https://tools.ietf.org/html/draft-agl-tls-chacha20poly1305-04
https://tools.ietf.org/html/draft-mavrogiannopoulos-chacha-tls-02
https://tools.ietf.org/html/draft-nir-cfrg-chacha20-poly1305-01
But the states of them are currently unclear to me.
There is also an old patch for NSS available at:
https://bugzilla.mozilla.org/show_bug.cgi?id=917571
I'm not sure that that patch is current or not.
An other alternative is using curve25519. It's also not standardized
yet, but at this time it seems more likely to be standardized first.
Anyway, using AES-GCM should be what you want to use now.
Kurt
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
